Content-Security-Policy | default-src 'none';script-src 'self' 'nonce-K7VMoWOsrxSezxQedYg1' ajax.googleapis.com ajax.aspnetcdn.com http://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.google-analytics.com https://use.typekit.net https://secure.leadforensics.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com;img-src 'self' data: https://p.typekit.net https://www.google-analytics.com;frame-src https://www.google.com/maps/ https://www.google.com/recaptcha/ https://cdn.knightlab.com/libs/timeline3/;font-src 'self' https://use.typekit.net maxcdn.bootstrapcdn.com;connect-src 'self' https://performance.typekit.net;form-action 'self';upgrade-insecure-requests;report-uri /WebResource.axd?cspReport=true |